E-commerce payments to be more secure
PR dla Zagranicy
Nick Hodge
02.12.2014 11:34
Polish banks have only two months left to make sure their online payment systems are in line with security recommendations from the Financial Supervision Authority (KNF).
Photo: Glowimages
Photo: Glowimages
The watchdog has asked lenders to make sure that their remote payment systems require so-called strong authentication, which means that at least two elements are required for the payment to go through.
The deadline for introducing the changes is 31 January 2015.
“There are no plans to extend it,” KNF press officer Lukasz Dajnowicz told Dziennik Gazeta Prawna.
Authentication methods may include permanent or one-time passwords and biometric data.
Currently, most banks allow for card payments online with the help of data visible on the card itself – the number, expiry date and the card verification number.
Only several banks, including Bank Millennium, ING Bank Slaski and Citi Handlowy, already have a format that meets the watchdog's criteria, using the 3DSecure system. Several others are working on its implementation.
Those banks that will not have 3DSecure or any similar system by the end of January, may not be able to offer remote payments.
The Polish Bank Association (ZBP) is in talks with the KNF on the recommendation and possible exceptions, Pawel Widawski from the organisation told the daily. (kw)